环境介绍:
服务器IP地址 |
主机名 |
安装软件 |
192.168.1.101 |
etcd-node01 |
etcd/k8s_master/flannel/docker-ce |
192.168.1.102 |
etcd-node02 |
etcd/k8s_master/flannel/docker-ce |
192.168.1.103 |
etcd-node03 |
etcd/k8s_master/flannel/docker-ce |
192.168.1.104(105) |
nginx-proxy |
Nginx |
192.168.10.156 |
docker-node01 |
K8s_node01/flannel/docker-ce |
192.168.10.159 |
docker-node09 |
K8s_node02/flannel/docker-ce |
前言:上两篇已经安装完成etcd集群,搭建好flannel网络和docker环境,本节开始安装kubernetes
在此之前确保etcd/flannel/docker正常工作,否则先解决问题再继续。
Kubernetes二进制包下载地址:https://dl.k8s.io/v1.13.2/kubernetes-server-linux-amd64.tar.gz,这个包含所有master和node所需组件
一、在k8s_master节点部署组件
1、创建相关证书
1.1创建并生成CA证书
#cat cat-config.json
{
"signing": {
"default": {
"expiry": "87600h"
},
"profiles": {
"kubernetes": {
"expiry": "87600h",
"usages": [
"signing",
"key encipherment",
"server auth",
"client auth"
]
}
}
}
}
# cat ca-csr.json
{
"CN": "kubernetes",
"key": {
"algo": "rsa",
"size": 2048
},
"names": [
{
"C": "CN",
"L": "Shenzhen",
"ST": "Shenzhen",
"O": "k8s",
"OU": "System"
}
]
}
#cfssl gencert -initca ca-csr.json | cfssljson -bare ca -
1.2创建并生成apiserver证书
# cat apiserver-csr.json
{
"CN": "kubernetes",